Claim 1 (original): A method for remote administration of at least one smart card 
Via a communication network, the method comprising: 

\ associating said at least one smart card with a remote administrator by 

storing administrator identification information of the remote administrator in said at 
least one smart card; 

\ inserting said at least one smart card in at least one user unit; 

\employing the administrator identification information stored in said 
at least one smhrt card to identify the remote administrator associated with said at 
10 least one smart cansL and 

establishing communication between the at least one smart card and 
. the remote administrator via the communication network in accordance with the 
administrator identificatioiWnformation. 

15 Claim 2 (original): A method ^according to claim 1 and wherein said establishing 
step is performed via said at least one user unit. 

Claim 3 (original): A method according to claim 1 and wherein said establishing 
step comprises employing Internet Protocol (IP) for communication via the 
20 communication network. \ 

Claim 4 (original): A method according to claim. 1 and wherein said establishing 
step comprises the steps of: \ 

identifying a local administrator other than the remote administrator, 
25 the local administrator being positioned in the communication network in a 
proximity to said at least one user unit; and \ 

determining the local administrator as a prWy administrator for 
administrating said at least one smart card by transmitting a\ least authorization 
information from the remote administrator to the local administrate. 
30 \ 
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^laim 5 (original): A method according to claim 1 and also comprising the step of 
administrating said at least one smart card after communication with the remote 
administrator is established. 

Claim 6\priginal): A method according to claim 5 and wherein said administrating 
step comprises the step of administrating said at least one smart card immediately 
after communication with the remote administrator is established. 

Claim 7 (currently, amended): A method according to claim 4 and also comprising 
10 the step of administrating said at least one smart card imm e diately after 
communication with ttie proxy administrator is established. 



15 



Claim 8 (original): A metntad according to claim 7 and wherein said administrating 
step comprises the step of acftninistrating said at least one smart card immediately 
after communication with the proxy administrator is established. 



20 



Claim 9 (original): A method according to claim 5 and wherein said administrating 
step comprises performing an administration initialization procedure to at least one 
of authenticate, verify and validate said atdeast one smart card. 

Claim 10 (original): A method according to claim 9 and also comprising the step of 
preventing performance of any operation other\han the administration initialization 
procedure until said administration initialization procedure is verified to be in order. 



25 Claim 11 (original): A method according to clairA 1 and wherein said step of 
employing the administrator identification information to identify the remote 
administrator comprises the step of identifying the at leastxpne smart card in a smart 
card data base at the remote administrator. 
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Claim 12 (original): A method according to claim 1 and, also comprising the step of 
accessing a protected information resource by said at least one smart card via the 
remote\administrator associated therewith. 

5 Claim 13 ^original): A method according to claim 12 and wherein said accessing 
step comprises performing at least one administration operation. 

Claim 14 (originm): A method according to claim 13 and wherein said at least one 
administration operation comprises at least one of the following: transmission of a 
10 certificate; transmission of credentials; transmission of a key; renewal of said at least 
one smart card; expiration date updating; renewal of an authorization to said at least 
one smart card; validity check of data in said at least one smart card; integrity check 
of data in said at least one smart card; memory load/check; revocation of at least one 
of an authorization, a certificate and a smart card; execution of a "KILL CARD" 
15 process after a verification of a iieed to prevent operation of said at least one smart 
card; data load; and transmission ofc smart card chaining information. 

Claim 15 (original): A method according to claim 12 and wherein said accessing 
step comprises the step of performing security mechanisms for accessing the 
20 protected information resource by said at legist one smart card. 

Claim 16 (original): A method according to, claim 15 and wherein said security 
mechanisms include at least one of the ^following: unilateral or bilateral 
authentication; time stamping; non-repudiation; drgital signatures; distribution of an 
25 encryption key; change of an encryption keV; encryption; and password 
authorization. \ 

Claim 17 (original): A method according to claim 12 and wherein each operation 
performed during said accessing step by at least one of Wd remote administrator 
30 and said at least one smart card is performed only upon receipt of an "END 
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ADMINISTRATION OPERATION" instruction at a .corresponding one of said at 
least qne of said remote administrator and said at least one smart card. 

Claim l\ (currently amended): A method according to claim 12 and wherein said 
remote administrator comprises a plurality of administrators, each operative to 
perform at (bast one of the following: at least part of said step of accessing the 
protected infoknation resource ; and and/or at least part of an administration 
initialization procedure. 

10 Claim 19 (original^: A method according to claim 1 and wherein said 
communication network comprises at least one of the following: a local-area- 
network (LAN); a metr^politan-area-network (MAN); and a wide-area-network 
(WAN). 

15 Claims 20-32 (canceled) 



Claim 33 (original): A system forVemote administration of at least one smart card 
via a communication network, the system comprising: 

a remote administrator having administrator identification 

20 information; 

at least one user unit; and 
at least one smart card associated with said remote administrator by 
storing in the at least one smart card said administrator identification information of 
the remote administrator, wherein 

25 said at least one smart card inserted in said at least one user unit is 

operative to employ the administrator identification information to identify the 
remote administrator associated with said at least one smart card, and to establish 
communication via the communication network between the at least one smart card 
and the remote administrator in accordance with the Administrator identification 

30 information. 
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Claim 34 (canceled) * 

Claim 35 (new): The system according to claim 33 and also comprising a smart card 
data bake associated with the remote administrator, the smart card data base 
5 comprising information enabling identification of the at least one smart card. 

Claim 36 (new): The system according to claim 33 and also comprising a protected 
information resource accessible by the at least one smart card via the remote 
administrator associated with the at least one smart card. 
10 \ 

Claim 37 (new): The system according to claim 36 and wherein the remote 
administrator comprisesva plurality of administrators, each operative to perform at 
least one of the following: at least partially accessing the protected information 
resource; and at least part oV an administration initialization procedure. 
15 \ 

Claim 38 (new): A system for remote administration of at least one smart card via a 
communication network, the system comprising: 

means for associating said at least one smart card with a remote 
administrator by storing administrator identification information of the remote 
20 administrator in said at least one smart \ard; 

means for inserting said at least one smart card in at least one user 
unit; \ 

means for employing the administrator identification information 
stored in said at least one smart card to identify the remote administrator associated 
25 with said at least one smart card; and \ 

means for establishing communication between the at least one smart 
card and the remote administrator via the communication network in accordance 
with the administrator identification information. \ 

30 Claim 39 (new): The system according to claim 38\and wherein said means for 
employing the administrator identification information comprise means for 
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identifying the at least one smart card in a sfnart card data base associated with the 
remote administrator. 

Claim 40 (new): The system according to claim 38 and also comprising means for 
accessing a protected information resource by said at least one smart card via the 
remote administrator associated with the at least one smart card. 

Claim 41 (new): The system according to claim 40 and wherein the remote 
administrator comprises a plurality of adminikrator means, each for performing at 



10 least one of the following: at least partially accfe^sing the protected information 
resource; and at least part of an administration initialization procedure. 
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